modified the remaining templates

59d54fdb · arbabnazar · 277c7b70 · 59d54fdb · 59d54fdb · 59d54fdb
Commit 59d54fdb authored Jan 08, 2016 by arbabnazar
6 changed files
--- a/playbooks/roles/nginx/templates/edx/app/nginx/sites-available/cms.j2
+++ b/playbooks/roles/nginx/templates/edx/app/nginx/sites-available/cms.j2
@@ -59,7 +59,7 @@ error_page {{ k }} {{ v }};
  {
   set $do_redirect_to_https "true";
  }
-  {% endif %}
+     {% endif %}

  # Execute the actual redirect
  if ($do_redirect_to_https = "true")

--- a/playbooks/roles/nginx/templates/edx/app/nginx/sites-available/ecommerce.j2
+++ b/playbooks/roles/nginx/templates/edx/app/nginx/sites-available/ecommerce.j2
@@ -30,20 +30,24 @@ server {
  add_header Strict-Transport-Security "max-age=31536000; includeSubDomains";
  {% endif %}

+  # Nginx does not support nested condition or or conditions so
+  # there is an unfortunate mix of conditonals here.
  {% if NGINX_REDIRECT_TO_HTTPS %}
+     {% if NGINX_HTTPS_REDIRECT_STRATEGY == "scheme" %}
  # Redirect http to https over single instance
  if ($scheme != "https") 
  { 
   set $do_redirect_to_https "true";
  }
-
-  # Nginx does not support nested conditions 
+     {% endif %}
+  {% if NGINX_HTTPS_REDIRECT_STRATEGY == "forward_for_proto" %}
  # Forward to HTTPS if we're an HTTP request... and the server is behind ELB 
  if ($http_x_forwarded_proto = "http") 
  {
   set $do_redirect_to_https "true";
  }
-
+     {% endif %}
+  # Execute the actual redirect
  if ($do_redirect_to_https = "true")
  {
  rewrite ^ https://$host$request_uri? permanent;

--- a/playbooks/roles/nginx/templates/edx/app/nginx/sites-available/insights.j2
+++ b/playbooks/roles/nginx/templates/edx/app/nginx/sites-available/insights.j2
@@ -33,20 +33,26 @@ location @proxy_to_app {
    proxy_pass http://insights_app_server;
  }
  
+  # Nginx does not support nested condition or or conditions so
+  # there is an unfortunate mix of conditonals here.
  {% if NGINX_REDIRECT_TO_HTTPS %}
+     {% if NGINX_HTTPS_REDIRECT_STRATEGY == "scheme" %}
  # Redirect http to https over single instance
  if ($scheme != "https") 
  { 
   set $do_redirect_to_https "true";
  }
+     {% endif %}
+  {% if NGINX_HTTPS_REDIRECT_STRATEGY == "forward_for_proto" %}

-  # Nginx does not support nested conditions 
  # Forward to HTTPS if we're an HTTP request... and the server is behind ELB 
  if ($http_x_forwarded_proto = "http") 
  {
   set $do_redirect_to_https "true";
  }
+  {% endif %}

+  # Execute the actual redirect
  if ($do_redirect_to_https = "true")
  {
  rewrite ^ https://$host$request_uri? permanent;

--- a/playbooks/roles/nginx/templates/edx/app/nginx/sites-available/kibana.j2
+++ b/playbooks/roles/nginx/templates/edx/app/nginx/sites-available/kibana.j2
@@ -22,7 +22,33 @@ server {
  {% else %}
  listen {{ KIBANA_NGINX_PORT }} {{ default_site }};
  {% endif %}
+  
+  # Nginx does not support nested condition or or conditions so
+  # there is an unfortunate mix of conditonals here.
+  {% if NGINX_REDIRECT_TO_HTTPS %}
+     {% if NGINX_HTTPS_REDIRECT_STRATEGY == "scheme" %}
+  # Redirect http to https over single instance
+  if ($scheme != "https") 
+  { 
+   set $do_redirect_to_https "true";
+  }
+     {% endif %}
+  {% if NGINX_HTTPS_REDIRECT_STRATEGY == "forward_for_proto" %}
+
+  # Forward to HTTPS if we're an HTTP request... and the server is behind ELB 
+  if ($http_x_forwarded_proto = "http") 
+  {
+   set $do_redirect_to_https "true";
+  }
+  {% endif %}

+  # Execute the actual redirect
+  if ($do_redirect_to_https = "true")
+  {
+  rewrite ^ https://$host$request_uri? permanent;
+  }
+  {% endif %}
+  
  server_name {{ KIBANA_SERVER_NAME }};

  root {{ kibana_app_dir }}/htdocs;

--- a/playbooks/roles/nginx/templates/edx/app/nginx/sites-available/lms.j2
+++ b/playbooks/roles/nginx/templates/edx/app/nginx/sites-available/lms.j2
@@ -79,7 +79,7 @@ error_page {{ k }} {{ v }};
  {
   set $do_redirect_to_https "true";
  }
-  {% endif %}
+     {% endif %}

  # Execute the actual redirect
  if ($do_redirect_to_https = "true")

--- a/playbooks/roles/nginx/templates/edx/app/nginx/sites-available/programs.j2
+++ b/playbooks/roles/nginx/templates/edx/app/nginx/sites-available/programs.j2
@@ -31,20 +31,26 @@ server {

  {% endif %}

+  # Nginx does not support nested condition or or conditions so
+  # there is an unfortunate mix of conditonals here.
  {% if NGINX_REDIRECT_TO_HTTPS %}
+     {% if NGINX_HTTPS_REDIRECT_STRATEGY == "scheme" %}
  # Redirect http to https over single instance
  if ($scheme != "https") 
  { 
   set $do_redirect_to_https "true";
  }
+     {% endif %}
+  {% if NGINX_HTTPS_REDIRECT_STRATEGY == "forward_for_proto" %}

-  # Nginx does not support nested conditions 
  # Forward to HTTPS if we're an HTTP request... and the server is behind ELB 
  if ($http_x_forwarded_proto = "http") 
  {
   set $do_redirect_to_https "true";
  }
+     {% endif %}

+  # Execute the actual redirect
  if ($do_redirect_to_https = "true")
  {
  rewrite ^ https://$host$request_uri? permanent;